Senior Associate ITAC

Job Summary:

The Senior Associate ITAC is responsible for assessing, evaluating, and supporting the design and effectiveness of technology controls in IT environments. This role supports risk-based audits, IT general controls (ITGC), application controls, and supports clients in regulatory and compliance engagements such as SOX, SOC, or ISO frameworks.

Key Responsibilities:

• Perform ITGC assessments including access controls, change management, backup/recovery, and operations
• Evaluate application controls (automated/manual) across business-critical systems
• Support internal and external audits related to IT compliance and risk
• Identify control weaknesses, assess risks, and provide recommendations
• Review system implementation and migration controls
• Assist in IT risk assessments and control testing as per SOX, SOC 1/2, ISO, or NIST frameworks
• Document findings, prepare reports, and present results to stakeholders
• Collaborate with cross-functional teams including cybersecurity, compliance, and finance
• Stay current on emerging technologies, risks, and regulations

Required Skills and Qualifications:

• Bachelor's degree in Information Systems, Computer Science, Accounting, or related field
• 24 years of experience in IT audit, risk management, or IT controls testing
• Strong knowledge of ITGCs, application controls, and audit methodologies
• Experience with ERP systems (e.g., SAP, Oracle, Workday, Dynamics)
• Familiarity with frameworks such as SOX, COBIT, NIST, ISO 27001, or SOC
• Good analytical, documentation, and communication skills

Preferred Qualifications:

• CISA, CISM, or equivalent certification (or working toward it)
• Experience in Big 4 or consulting firms
• Exposure to cloud environments (AWS, Azure, GCP) and cloud security controls
• Knowledge of cybersecurity controls and vulnerability assessmen